A network intrusion detection system (IDA) retrieves information related to intrusions from target systems across the network by using mobile agents. Simultaneously, the agents trace the intruders. IDA detects intrusions based on information collected and the route of intrusion. This paper mainly describes how IDA retrieves the information and traces the intrusions. 1 Introduction Computer break-ins are mainly divided into two types; break-ins from outside LAN and those from inside LAN. However, it is rare in either case that intruders directly attack the target host from their own hosts.
Did you find this white paper useful?
22 out of 45 users found this white paper useful
Related white papers
Take the Sophos Threat Detection Test: Is your current anti-virus catching everything it should?
Use the Sophos Threat Detection Test to quickly perform a scan and find any viruses, spyware, adware or zero-day threats that might have by-passed your existing protection. The test can...
Cross Site Scripting Explained
This white paper briefs on how to stop Cross Site Scripting (CSS) attacks. It details the entire CSS technique and methods for securing a site against CSS attacks.
Attacks and Countermeasures: A Study of Network Attack Classes and Security Components to Protect Against Them
There are many types of network attacks, and security solutions to address almost all of them. Most attack types fall into three major categories: attacks on integrity, attacks on confidentiality...
Network Segmentation
Traditional network security has been based on separating the enterprise internal network from all external connections and controlling what is allowed to enter. This plan cannot deliver effective security in...
Trojan Defence: A Forensic View
The Trojan defence; “I didn’t do it, someone else did”– myth or reality? This two part article investigates the fascinating area of Trojan & network forensics and puts forward...
Gene Kim Presents "Surviving and Benefiting from an Audit" with Craig Morgan, Partner KPMG
An audit is a necessary and often painful event for many companies. As difficult as it is to imagine, it is possible to benefit from an audit. By understanding the...
Wireless worries: Unauthorized hot spots and rogue warriors
Many businesses and educational institutions have their own wireless networks-- but are often faced with policing rogue wireless hot spots brought in by employees or students. The rogue hot spots...
